Patron, Inc. (“Patron”) is providing notice to impacted individuals of a recent cybersecurity event. Patron identified suspicious network activity on its network and immediately took action to secure its IT environment. As part of that response, Patron conducted an investigation of what had occurred and what information may have been impacted and found there had been unauthorized access to information on the Patron systems. There is no evidence that any personal information has been or will be misused. The security of personal information is very important to us, and we sincerely apologize for any inconvenience this may cause.
What Happened?
On or around May 23, 2025, Patron identified suspicious activity in its network. We immediately implemented our incident response protocols, disconnected systems, and engaged external cybersecurity specialists to assist with an investigation into what had happened and what information may have been impacted. The investigation identified unauthorized access to a limited number of files and folders within the Patron network. We then reviewed the contents of the files and folders and determined that personal information was present and impacted during the incident. Letters were mailed to those individuals whose information had been impacted and for which Patron had addresses.
What Information Was Involved?
From the review, it appears that the impacted files may have included individuals’ names, and some combination of the following data elements: addresses, Social Security numbers, driver’s license numbers, federally issued ID numbers, financial account numbers, and health information.
What We Are Doing:
We want to assure you that we are taking steps to minimize the risk of this happening in the future. In response to the incident, we changed user passwords, restored from clean backups, and implemented additional endpoint monitoring and detection tools, among other measures.
Letters were mailed to individuals for whom Patron has addresses, which contain more information about the incident as well as instructions for enrolling in credit monitoring and identity protection services through Haystack, the data breach recovery experts.
What You Can Do:
Impacted individuals should be vigilant for the next 12 to 24 months and review credit reports, bank accounts, and other financial statements, and immediately contact their financial institution if they identify suspicious activity.
For More Information:
Individuals should call 888-844-1254 (toll-free) during the hours of 8:00 am to 11:00 pm Eastern time, Monday through Friday, and 9:00 am to 6:00 pm Saturday (excluding U.S. national holidays) with any questions. Protecting personal information is important to Patron, and we sincerely apologize for any concern this incident may cause.